PoC for detecting and dumping code injection (built and extended on UnRunPE)
☆58Oct 23, 2018Updated 7 years ago
Alternatives and similar repositories for Dreadnought
Users that are interested in Dreadnought are comparing it to the libraries listed below
Sorting:
- PoC for detecting and dumping process hollowing code injection☆52Oct 23, 2018Updated 7 years ago
- ☆12Feb 19, 2017Updated 9 years ago
- Code Injection technique written in cpp language☆34Jan 5, 2018Updated 8 years ago
- ☆14Jan 10, 2017Updated 9 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆44Oct 3, 2018Updated 7 years ago
- ☆10Sep 29, 2019Updated 6 years ago
- UI application that can compare PE images in memory or in raw PE file☆19Feb 17, 2014Updated 12 years ago
- ☆24Nov 17, 2017Updated 8 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22May 31, 2017Updated 8 years ago
- ☆14Feb 23, 2018Updated 8 years ago
- ice9 - is anticheat based on usermode tricks and undocumented methods , builded as dll for loading trought the shibari framework☆25Jan 30, 2025Updated last year
- XDK is a fully featured C++ wrapper library for Windows kernel development☆21Jan 20, 2016Updated 10 years ago
- Minifilter Driver☆15Feb 10, 2017Updated 9 years ago
- ☆11Sep 28, 2017Updated 8 years ago
- Modifies the code of the RtlUserThreadStart callback and reads the arguments passed to it. Then it changes the initial execution argument…☆15Mar 4, 2018Updated 8 years ago
- Software Distribution Service☆12Jul 2, 2015Updated 10 years ago
- Confirms the capability of Hardware-Accelerated Virtualization Technology.☆10Feb 26, 2026Updated last week
- A system call tracer☆10Sep 22, 2014Updated 11 years ago
- Intel-Process communitation☆10Feb 27, 2017Updated 9 years ago
- Windows inject☆16Jun 7, 2018Updated 7 years ago
- Class implementation of PowerLoader injection technique☆32Dec 23, 2016Updated 9 years ago
- Notes my learning steps about Windows-NT☆23May 18, 2017Updated 8 years ago
- Reflective DLL Injection style process infector☆20Jul 23, 2018Updated 7 years ago
- usermode standalone kernel interface☆111Jul 9, 2018Updated 7 years ago
- ☆30May 23, 2017Updated 8 years ago
- an efficient yet easy to use network packet builder and parser☆11Jul 3, 2017Updated 8 years ago
- ☆11Mar 11, 2015Updated 10 years ago
- Dynamic binary analysis via platform emulation☆12Aug 10, 2018Updated 7 years ago
- PE/PE +(64bit) Viewer (Qt 5.8)☆10Aug 3, 2018Updated 7 years ago
- RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …☆10Jul 1, 2015Updated 10 years ago
- Remote execution tool☆14Jan 14, 2014Updated 12 years ago
- Decompile an x86 exe, and read PE infos.☆19Sep 29, 2018Updated 7 years ago
- A debbuger based dbgeng for WIndows☆34Aug 23, 2017Updated 8 years ago
- ☆19Jul 20, 2015Updated 10 years ago
- DNS反弹shell客户端☆13Jul 24, 2016Updated 9 years ago
- This is a pintool that can analyze target dynamically and output code blocks and "key frames".☆14Mar 26, 2015Updated 10 years ago
- ☆12May 12, 2014Updated 11 years ago
- A C++ cross-platform log library.☆13Jun 4, 2022Updated 3 years ago
- An Ark tool project,run on Win7 x86/x64☆118Jul 11, 2017Updated 8 years ago